search cancel

Error "Unable to load certificate at com.ca.itechnology.iclient.iTechCertificateReader.loadP12" when trying to load in IT PAM

book

Article ID: 186048

calendar_today

Updated On:

Products

CA Process Automation Base

Issue/Introduction

When trying to log in ITPAM it fails with the error  "Invalid user/password"

The eiam.javasdk.log shows the following error:

ERROR 2020-03-09 13:47:28,374 [http-pam%2F10.0.10.27-8020-4] [com.ca.eiam.SafeCertificateReader] SafeCertificateReader::readP12: failed

com.ca.itechnology.iclient.IclException: Unable to load certificate
at com.ca.itechnology.iclient.iTechCertificateReader.loadP12(iTechCertificateReader.java:117)
..
Caused by: java.io.IOException: PKCS12 key store mac invalid - wrong password or corrupted file.
at org.bouncycastle.jcajce.provider.ProvPKCS12$PKCS12KeyStoreSpi.engineLoad(Unknown Source)
at java.security.KeyStore.load(KeyStore.java:1445)
at com.ca.itechnology.iclient.iTechCertificateReader.loadP12(iTechCertificateReader.java:68)
... 46 more

Environment

Release : 4.3

Component : Process Automation

Cause

This issue is caused by a missing or invalid P12 keystore file for the EEM server integration with ITPAM

Resolution


The approach to solve this issue is to run the ITPAM installer and use it for reconfigure and re register the EEM.

Additional Information

CA PROCESS AUTOMATION - 04.3.05 Install Process